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@ The present invention is a method of protect- 
ing electronically published documents. It invol- 
ves operating a computer system and network 
(9) for electronic publication of documents, 
including the steps of : a) receiving requests for 
documents from a plurality of users (117) hav- 
ing computers with display devices (121) or 
printers (123), including with the requests un- 
ique user identification for each of the plurality 
of users ; b) authenticating the requests from 
the plurality of users with a copyright server (7) ; 
c) using the copyright server to direct a docu- 
ment server (3) to act upon proper authenti- 
cation of each request; d) in response to 
direction from the copyright server, using a 
document server (7) to create uniquely erv 
coded, compressed and encrypted documents 
for each authenticated request the documents 
having unique encoding corresponding to each 
of the plurality of users, and forwarding the 
documents to each authenticated request user 
through the network (9) to conresponding 
agents of each authenticated request user, each 
of the agents being selected from display 
agents (111) and printer agents (113); and. e) 
decrypting and uncompressing the documents 
at ach of the ag nts and making the docu- 
ments available for use only in response to 
receiving correct secret keys provided by the 
authenticated request user to the agents. These 
agents are either pre-installed as software into 
each of the plurality of users* computers, pre- 
instalted as hardwar or firmware into user 
hardwar select d from display d vices and 
printers, or are software programs transmitted 
at the time of use. 
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fi:eld of the invention 

The present invention relates to naethods of pro- 
tecting electronicai}y published materials using cryp- 
tographic protocols: The invention also utilizes spe- 
cial "agents" of software or hardware to have individ- 
ual requirements for display devices and/or printers to 
effect decryption and display or printing of the docu- 
ments. These methods are directed to inhibiting illicit 
republication or copying of electronically published 
documents. . ; - . 

IKFORiViATIOM DISCLOSURE STATEMENT 

Cryptography; and Identity Verification have 
been described in the prior art in conjunction with 
' computer transmissions through networks.: For ex- 
ample. United StalesPalentNo.,4,393,26S describes 
a method of incorporsting a one-v/ay sequence for 
transaction and, identity- verification iand United 
Slates Patent No. 4.995,082 sets forth a method of 
identifying subscribers' and for generating and verify- 
ing electronic signatures in data exchange systems. 
United States Patent No. 5.144,665 describes a cryp- 
tographic communicalion method and system. Al- 
though these patents use cryptographic techniques 
and key identification and access methods, none 
teaches or suggests the system claimed herein which 
involves a combination of techniques to prevent illicit 
copying snd to e.nhance tracing of original users. 

SUMMARY OF THE INVENTION 

The present invention is a method of protecting 
electronically published documents. It involves oper- 
ating a computer system and network for electronic 
publication of documents, including the. steps of: a.) 
receiving requests for documents from a plurality of 
users having computers with display devices or prin- 
ters.'including with the requests unique user identifi- 
cation for each of the plurality of users;,b.) authenti- 
cating the requests from the plurality of users with a 
copyright server; c.) using the copyright server to di- 
rect a document server to act upon proper authenti- 
cation of each request: d.) in response to direction 
from the copyright server, using a document server to 
create uniquely encoded, compressed and encrypted 
documents for each authenticated request, the docu- 
ments having unique encoding corresponding to each 
of the plurality of users, and forwarding the docu- 
ments to each authenticated request user through the 
network to corresponding agents of each authenticat- 
ed request user, each of the agents being selected 
•* from display agents and printer.agents; and, e.) de- 
" crypting and uncompressing the documents at each 
^bf ttils^agents and making the documents available for 
: li^e only in response to receiving correct secret keys 
provided by the authenticated request user to the 



agents. These agents are either pre-irstalled as soft- 
ware into each of the plurality of users' computers, 
pre-installed as hardware or firmware into user hard- 
ware selected from display devices and printers, or 
5 are software programs transmitted at the time of use. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention .will be more fully under- 
10 ' stood when the specif icatton herein is taken in con- 
junction with the appended drawings, wherein: 

Figure 1 illustrates a diagram of the overall archi- 
tscture of the present invention method of pro- 
tecting electronically published materials; 
15 Figure 2 illustrates a specific architecture for a 

present invention method using specialty hard- 
ware; and, 

Figure 3 illustrates a specific architecture for a 
- present invention method using specialty soft- 
.20 ^ : ware. 

DETAILED DESCmPTIQN OF THE PRESENT 
INVENTION 

^ 25- 1. INTRODUCTION ; . 

The increased use of facsimile has made the 
, electronic transfer of paper documents more accept- 
ed. Electronic mail, electronic bulletin boards and 

30. large networks systems make it possible to distribute 
electronic information to large groups. Moreover, the 
proliferation of personal computers and workstations, 
: the excellent quality of desktop printers and the plum- 
meting cost of storage devices for large volumes of 

35 electronic data have made it technologically feasibi 
to display, print and store documents electronically. 
All of these developments have made electronic pub- 
lishing a reality. The electronic distribution of informa- 
tion is faster, less expensive, and requires less effort 

40 than making paper copies and transporting them. 
Other factors that favor electronic information distrib- 
ution, include the ability to use a computer to search 
for specific information, and the ability to more easily 
customize what is being distributed to the recipients. 

45 .; Electronic newspapers, magazines and journals are 
poised to supplement and eventually replace the cur- 
rent paper distribution networks, 

The advantages offered by electronic distribu- 
tions are also among the primary technical impedi- 

50 mentSito the acceptance of electronic documents as 
a replacement for paper versions. One of the major 
technical and economic challenges faced by electron- 
ic publishing is that of preventing individuals from 
; > easily copying and illegally distributing electronic 

55 documents. It is easier for a person who receives an 
electronic document to forward it to a large group than 
it is for a person who receives a paper copy of th 
. same document. In addition, electronic copies are 
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more like the originals than pap r copies. When an 
electronic copy is made, the original owner and th re- 
cipient have identical entities. Bootlegged copies of 
electronic documents are likely to result in major loss- 
es in revenue. • ' ■ 

Thus, the present invention is directed to the use 
of cryptographic protocols to discourage or prevent 
the distribution of illicit electronic copies via any avail- 
able distribution and presentation techniques, typi- 
cally, using printers and^ display devices. The term 
"printer" as used herein is intended for broad interpre- 
tation so as to include mechanical and laser printers, 
facsimile machines, copiers; plotters, etc. Likewise, 
"display devices" should be broadly- taken to include 
ahy device that displays documents in any forni other 
than printed form. The present invention involves two 
alternative approaches to making electronic docu- 
' ment distribution secure. In each case, the publisher 
encrypts the document with a secret key. In the first 
method, described in Section 3.1, special purpose 
hardware or firmware in the printers and display de- 
vices decrypts the dqcqmenL The user only has ac- 
cess to the encrypted version of the document, which 
is not useful to anyone else. 

In the second method, described in Section 3.2, 
the document is decrypted in software in the reci- 
pients dbmputer. Special purpose hardware or firm- 
ware is not required;but the bitmap is available to the 
user and can b)e distributed. In this' strategy, the pub- 
lisher isncrypts the^ document, transmits the docu- 
nient in a page description language (hereinafter 
"PDL"), such as the well known PostScript language, 
and the decryption prograrh produces a bitmap. The 
publisher can easily modrfy the- inter-line or inter- 
word spacings in the PDL version of the document to 
make each copy of the document unique. There are 
two elements of this strategy that discourages the 
distribution of illegal copies: 

1. Illegal copies, that are in violation of the copy- 
right laws, can be traced back to the original own- 
er. ' ' 

2. The bitmap, or an easily compressfed version 
of the bitmap, has more bits than the PDL ver- 
sion, so that it costs an illegal distributor more to 
transmit the document than it does the publisher. 
This strategy also reduces the transmission cost 

to the publisher for unique document identification. 

'-'The unique identifiers are easily removed from the 
PDL version, but not from the bitmap. Encryption 
makes it possible forthe publisher to transmit the PDL 

- version without giving the user acCfess to iL 

The cost of a processor that* is capable of per- 
forming decryption is not large with respect to cost of 
printers and displays. Therefore, one should suspect 
that the first strategy will probably be used once elec- 
tronic publishing catches on. However, until electron- 
ic publishing is used on a widespread basis, it is un- 
likely that output devices with internal decryption ca- 



pabilities will exist The second strategy may provide 
an acceptable means to achieve the purpose of th in- 
vention beforeispecialty hardware is widely accepted. 
Although the second strategy just discourages illegal 
5 copying and does not prevent it, it niakes a wider 
. class of electronic publications possible. Once a rea- 
sonable set of electronic rpublrcations is available, 
special purpose hardware should become reason- 
. .. able. ' * . 
10 ■ ' ■ . 

2. ARCHITECTURE 

.The basic iarctiitecture for the drstribOtioirof elec- 
tronic documents according to the present invention 
' 15 lis shown in Figured. Here, Document Server 3 (trust- 
eed by a publisher) provides encoded, encrypted and 
V ' compressed document to User .17. Copyright Server 
■ . ^7^ authenticates requests from User .17 for.obtainirig 
* e documents, and* this is also trusted by a publisher. 
20 Display Agent 11 includes software: trusted by pub- 
^ iMisherwtiichdecryptsand displays the document b- 
^ - tainedfrom Document Server 3. Printing Agent 13ln- 
; eludes software trusted: by a publisher which de- 
{ / ^ ^cr^ts and printsf the document obtained from docu- 
'25 r. ^. mentserver. Either Display Agent H or Printing Agent 
> ■ 13, oir bothj or a plurality of.these may be available to 
r! -aiuser:' - : ; ^ : V:';' 
J- 5. Network 9 transports document requests and 
documents to and from the other components. User 
30 17 generates a signed request for docunr^nt and will 
need to provide a secret key to display or print a docu- 
ment. \ .' ■ 

: . 3. PROPOSED EMBODIMENTS 

35 ' • ' I ^ • 

^ ^ . Two generally separate embodiments are pro- 
? ' posed for making electronic document distribution 
*c V !' ^secure. The first approach requires special purpose 
- hardware for displaying or printing the^ electronic 
40 . document, and may be nrwre appropriate when the 
ihardware technology progresses to the stage where 
t -'r such special purpose devices are inexpensive and 
easily available. The second approach utilizes dis- 
' ''I. play devices and printers that are available now. How- 
. 45 ever; both protocols use the same basic architecture 
» and method discussed before. 

3.1 Example 1 

. so This first embodiment shown in Figure 2, in- 

r ,vjuvolves-a straightforward application of cryptographic 
ij ■ i techniques to send encrypted information b tween a 
; r,, Document Server 103, which is trusted.by the pub- 
-'S' lisher. and^atrusted Display Agent 11 1 and/or a trust- 
55 ; ed Printing Agent 11 3. The Display Agent 111 or Print- 
ing Agent 113, containing the.secretkeyihaysshared 
with the Copyright Server 107, resides. witlMO the spe- 
cial purpose display, device 121 or printer 123 de- 
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signed for electronic publishing. Thus. Agent means 
£hs necessary software, hardware, and/or firmware 
to decrypt only in response to specified inputs. These 
devices must be sealed so that it is not easy to mak 
copies of the hardware or firmware that contains the 
secret key or keys. 

When the User 1 1 7 wants to view or print a docu- 
ment, he must make a request for a . document via net- 
work 109 by using a unique identification, such as a 
credit card number, or other relatively valuable num- 
ber that a user would not be willing to give away to 
someone else for illicit purposes. The Copyright Ser- 
ver t1 07. will authenticate the User's request and then 
the Document Server 1 03 sends out an encrypted 
copy directlyito the display device 121 orprinter 123 
available to User Space 115, This document Is en- 
crypted so thatonly^a specific printer or display de- 
vice can decrypt it Since only an encrypted docu- 
ment is seen .on the network, it is not possible for a 
majicious user to get at the document. Once the dis- 
player or printer receives, the encrypted document, 
the device decryptsjt and displays or prints it. As an- 
other feature for some embodiments of the present 
Enventiont In order for the User to activate display or 
print functions, the, User may be required to input to 
the Display or, Print Agent* ; a unique identification 
number such as was used to make the initial request. 
In these embodiments, it is possiblejo prevent the 
distribution of illicit copies. The algorithm used in this 
method to encrypt infomiation could be any standard 
algorithm, such as DES (a known private key system- 
Digital Encryption Standard). However, this ap- 
proach requires special purpose displays and printers 
for electronic publishing, and so may be more appro- 
priate when there is a sufficient set of services and 
users to justify such special purpose hardware. Such 
hardware is well within the skill of the artisan, but the 
economics based on low numbers of users would 
make it difficult to succeed commercially until wide- 
spread electronic publishing occurred. , ; 

3.2 Example 2 

In this second approach, cryptographic techni- 
ques that do not require special purpose hardware are 
used. The problem that is encountered when dealing 
with conventional displays and printers is that the in- 
formation that is displayed or printed exists in the re- 
cipient's computer. The recipient can capture the in- 
formation that will be displayed, :and can distribute 
that information to as many other printers::and dis- 
plays as desired. Instead of trying to prevent the re- 
cipient from redistributing informationi the objective 
will t>e to discourage the distribution of bootlegged 
.copiesi', 

iuln anrearlier work, it was shown that the ability to 
: custom tailor .copies of the journal for each recipient 
''could -also be used to identify the original owner of a 



document. Information that identifies th original 
owner is encoded into the space between the lines 
and words of t xt or as part of unique shifting or 
changes in word, line and character features. The in- 

5 tention of the mechanism is to discourage individuals 
from distributing journals in violation of the copyright 
. laws. - > . . 

A protocol is now described by which documents 
can be distributed electronically to the subscribers 

10 and the subscribers can be discouraged from distrib- 
uting the documents electronically to non-subscrib- 
ers. The algorithm used to encrypt infomriation could 
be any standard algorithm, like RSA (an algorithm 
public key system which is well known- Revere Sha- 

15 mirez Algorithm). The present invention involves the 
novel application of cryptographic techniques to dis- 
courage the illegal distribution of electronic docu- 
ments. Since this example does not require special 
purpose hardware, it is believed that this technique 

20 will help demonstrate the feasibility of electronic 
, document distribution, and encourage new services 
In this area. Once there are enough users, special 
purpose hardware will be justified, and a simpi r 
method like Example 1 may then be used successf ul- 

25 ly from a commercial standpoint. 

; 3.2.1 Overview of the Protocol , . . . 

The protocol is discussed in conjunction with Figure 
30 3 and works in the following phases: 

1 . Request Generation: user u requests a docu- 
ment by sending a signed message to Copyright 
Server 207 via Network 209, including document 
details. 

35 2. Document Transmission: (a) the Copyright 

Server 207 verifies the request and if it is valid, 
it arranges to send the document from the Docu- 
ment Server 203, (b) Document Server 203 
sends the encrypted and compressed PDL ver- 

40 sion of the document to the User 21 7. The docu- 

ment sent to user u is also encoded or finger- 
printed with some information unique to u. (Alter- 
natively, this encoding or finger-printing of the 
document may be performed at the user end, e.g. 

45 by the user's printer or d isplay device.) The Copy- 

right Server 207 may also send the Display Agent 
211 and the Printing Agent 21 3 to the User Space 
215 at this stage. 

3. Document Viewing or Printing: upon receiving 
50 a request to display (or print) the document the 
Display .Agent 211 or the Printing Agent 213 
prompts the User 217 to type in his/her secret 
key, Su, upon receiving which the agent decrypts 
and decompresses the received PDL document, 
55 ; generates a bitmap and sends it to the display de- 
vice 221 or printer 223. 
Details of the Protocol 

Hereinafter cf. c. and u refer to the Document 
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Server, the Copyright Server and the User, r spec- 
tivety. It is assumed that each user u has a pair of pub- 
tic and secret keys and Sy. In addition, the Docu- 
ment/Copyright Server will have a key Mx which will 
be used to encrypt the transmitt d documents and 
which will be embedded in the Display and Printing 
Agents so that they can decrypt the received docu- 
ments. 

Reqiieist Generation: 

m^{u,c) = [ u, document info. ESu [ u. document 
' info]] 

This is a signed niessage mi from user u to Copy- 
right Server c requesting a document Document in- 
fdrmatlon (like journal, title of article, authors, etc.) is 
sent together with the user ID. u. The user ID u helps 
the Copyright Server to Idok up the directory to find 
Pj. the public key of the user. In additiori'. the user 
signs the dear text with his/her secret key, S^. En- 
cryption £ with Su is needed to p'reveht malicious 
users from pretending to be who they are hot, to pre- 
v^nt'any tampering of the document request. 

Document Transniission: > 

Copyright Server receives mi(i/,c). looks up the 
directory for Pu. decrypts ESy [u, [document info]], 
and corhpares the dear text against the decrypted 
text If they are identical, it sends a message /n3 to the 
Document Server to'sehd the document mz{d,u) to 
user. The Copyright Server also sends the Display 
Agent and the Printing Agent to the user as message 
Ar?2(c,ty) at this stage. The Display Agent and the Print- 
ing Agent have embedded in them a key <I>. which is 
EPu[Mx], i.e. the key, encrypted with the public key 
Pu of the user. 

mzic.u) = [[Display Agent],[Printing Agent]] 
m:i(d,u) = EyWi^^ [[Compressed Document]] 

The Display and Printing Agents are not encrypt- 
ed because nobody other than a specific user u can 
use them for decrypting an encrypted document 

The document sent to the user is a compressed 
PDL version that is encrypted with Mx. Even if user u 
distributed the Display or Printing Agents, together 
with the encrypted document, it would be of no use 
unless the secret key Su was divulged as welt be- 
cause the key M^, with which the document is encrypt- 
ed; cannot be generated from <I> without Su. 

Document Viewing or Printing: ' 

To view (or print) a document, the Display (Print- 
ing) Agent first prompts the user for his secret key Su. 
The embedded key d) is decrypted with So to obtain 
the key with which the compressed document is 
decrypted. This is further decompressed, converted 
to a bitmap and sent to the screen (printer). 
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Th above protocol will allow a legitimate user to 
request a document and view it on" his/her temrti- 
nat/workstation as many times as desir d. However, 
it will prev nt an illegal' user from doings the same 
even if he/she happens to copy the Display/Printing 
Agents and the encrypted document from the legal 
user. The underlying assumption in' the protocol is 
that the user's secret key, Su, is too important for the 
user to give up. If the secret key is the same as used 
for electronic mail signatures, system login or credit- 
card purchases, there is a strong disincentive to giv- 
ing it away to others. . ' 

Additional precautions can be built in by some- 
' how restricting the document to be displayed or print- 
ed on' some pre-registered hardware. But this is not 
desirable as it will tie down the user to specific ma- 
chines and restrict his/her mobility, 
i , Dnce the document has been decrypted and de- 
' cdftipressed. it is available as a bitmap In the user's 
> computer: Recall that (1) the bitmap is finger-printed 
with inforirnation spedf ic to user, tr. and (2) the bitmap 
• is much larger than the compressed PDL version of 
■ docurherit transmitted by the publisher. So, even if 
^ the user is willing to capture and transmit the much 
larger bitmap file, the user ci^n^^ionly do itatthe risk of 
ihcnminatihg^hinr^elf, unless the user makes the sig- 
" nifidantly larger effort required to erase the finger- 
-print from the bitmap. ' ' . 

3.2.2. Use-Once Programs as a Key-HWing 
Mechanism 

As pointed out in Example 2, critical programs are 
required to be executed under the user control to dis- 
play and print documents. For example, there is a dis- 
play or printing agent which is a trusted program with 
the publisher's magic key /I4 hidden in it During exe- 
cution, the display (printing) agent picks up ESu[MJ 
from the right location, decrypts it using Sj provided 
by the user u arid used it to decrypt the encrypted 
document Note that if the user can discover by 
analyzing the code for display (printing) agent and 
stopping the execution at the right point, then the 

' whole purpose of sending encrypted documents is 
defeated. Since this kind of reverse engineering can- 
not be completely prevented, the payoff of reverse 
engineering is reduced by sending trusted programs 
that do the same job but look different for each user. 
If documents and Display/Printing agents are distrib- 
uted through networks, it is relatively easy to gen r- 

--ate a unique copy for each recipient 

■ The use of use-once programs also has the ad- 
vantage that the origin of program, can be readily 
traced. Modifying a binary executable to create an- 
other working program requires a deep understand- 
ing of the program structure and any self-protection 
mechanisms (checksums) a progranrr^may employ. 
Compared to protecting printed artides. identifying 
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programs is relatively easy. 

For example, four different levels of security may 
be used: 

1. all users have th same Display/Printing 
Agents containing an algorithm that deriv s a key 
from a system identifier; 

2. the Display/Printing Agent are sent once (or at 
some time interval but unique for each user); 

3. the Display/Printing Agents are the same for 
each document and are transmitted with each 
document; 

4. the Display/Printing Agents are unique and are 
transmitted with each document 

A number of techniques can be used for creating 
unique, but equivalent programs automatically at the 
compile or link stage. For example: 

(1 ) the linker can reorder text and data segments; 

(2) the compiler can be instructed to randomly 
optimize certain sections of code; 

(3) sections of the code can be replaced by func- 
tionally equivalent, different algorithms and, 

(4) the compiler can change the register alloca- 
tion sequence. 

Note that more elaborate arrangements for pro- 
tecting RAM access patterns and contents may be 
added, at the cost of reduced execution efficiency. In 
addition, standard techniques of hiding tell-tale code 
sequences (such as replacing system calls to con- 
stant addresses by computed calls) should be used. 

Obviously, numerous modifications and varia- 
tions of the present invention are possible in light of 
the above teachings. It Is therefore understood that 
within the scope of the appended claims, the inven- 
tion may be practiced otherwise than as specifically 
described herein. 



Claims 

1. A method of protecting electronically published 
documents, which comprises: 

operating a computer system and network 
for electronic publication of documents, and in- 
cluding therein the steps of: 

a. ) receiving requests for documents from a 
plurality of users having computers with dis- 
play devices or printers, said computers being 
connected by said network to said computer 
system, said requests including unique user 
identification for each of said plurality of 
users; 

b. ) authenticating said requests from said 
plurality of users with a copyright server; 

c. ) using said copyright server to direct a 
document server to act upon proper authenti- 
cation of each request; 

d. ) in response to direction from said copy- 
right server, using a document server to cre- 



ate encrypted documents along with a unique 
identification for each authenticated request 
and forwarding said documents to each au- 
thenticated request user through said net- 
5 work to corresponding agents of each authen- 

ticated request user, each of said agents be- 
ing selected from display agents and printer 
agents; 

e. ) encoding said documents so that each 
10 document created is uniquely encoded based 

tipon said unique identification; and, 

f. ) decrypting said documents at each of said 
agents and making said documents available 
for use only in response to receiving correct 

15 secret keys provided.by said authenticat d re- 

quest user to said agents. 

2. The method of claim 1 wherein said document 
server also compresses said documents and 
20 said agents uncompress said documents In re- 

sponse to receiving a correct secret key provided 
by said authenticated request user. 

. 3; The method of claim 1 wherein said plurality of 
25 " users have the same agents that uses an algo- 
^ rithm that derives a key from a system identifier 
to allow decryption and display in subsequent re- 
sponse to a unique, correct user secret key. 

30 4. The method of claim 1 wherein said plurality of 
users receive agents with each document for- 
warded, all such agents being the same for a giv- 
en document and different from publication to 
publication. 
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5, The method of claim 1 wherein said plurality of 
users receive agents with each document for- 
warded, all such agents being different from one 
another. 



6. A method of protecting electronically published 
documents, which comprises: 

operating a computer system and network 
for electronic publication of documents and in- 
45 eluding therein, the steps of; 

(a) receiving requests for documents from a 
- plurality of users having computers with dis- 
play devices or printers, said computers being 
connected by said network to said computer 

50 system, said requests including unique user 

identification for each of said plurality of 
users; • - . 

(b) authenticating said requests from said 
plurality of users with a copyright server; 

55 (c) using said copyright server to direct a 

document server to act upon proper authenth 
cation of each request; 
(d) in response to direction from said copy- 
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right s rver, using a document server to cre- 
. ate compress d and encrypted docunnents 
r for each authenticated request, and forward- 
. ing said documents to each authenticated re- 
quests user through said network to corre- 5 
spending agents of each authenticated re- 
quest user, each of said agents being select- 
ed from display agents and printer agents; 

(e) encoding said documents so that each 
document created is uniquely encoded with 10 . 
encoding corresponding to each of said plur- 

.ality of users;, and, ^ 

(f) decrypting and uncompressing said docu- 
ments at each of said agents and making said . . 
documents available for use. only in response is 
to receiving conrect secret keys provkled by 

said authenticated request user to said 
agents. i 

7: The method of claim 1 or 6 wherein said agents 20, i 
are pre-installed as software into each of said 
plurality of users* computers, c . i 

:8. The method of claim 1 or 6, wherein said agents : : 

are software .programs which are transmitted to ^ 25 ; 
■ said; plurality of users only after requests have 
V c t)een. authenticated. . / . 

9. The method of claim 1 or 6 wherein said agents 

are pre-installed as computerware selected from 30 
, hardware and firmware, into user hardware se- 
lected from display devices and printers. 

1 0. The method of claim 1 or 6 wherein each of said , 
agents has a unique internal code corresponding 35 
to its user. 

11. The method of daim 1, 6, 7 or 9 wherein each of 
said agents is capable of decrypting only a sin- 
gle, uniquely encoded version of documents put>- -40 
lished. 

12. The method of claim 6 wherein said agents are 
pre-installed as firmware into user hardware se- 
lected from display devices and printers, and 4S 
wherein each of said agents is capable of de- ^ 
CTypting only a single, uniquely encoded version 

of documents published. 

.i3. The method of daim 1 or 6 wherein said docu- 60t 
ments are uniquely encoded by the document 
server. ^ u 

14. The. method of daim 1 or 6 wherein said docu- 
ments are uniquely encoded after being forward- 55 
ed to each authenticated request user. 
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(57)^ The present invention is a method of protect- 
' ing electronically published documents. It invol- 
ves operating a computer system and network 
(9) for electronic publication of documents, 
including the steps of: a) receiving requests for 
documents from a plurality of users (117) hav- 
ing computers with display devices (121) or 
printers (123), including with the requests un- 
ique user identification for each of the plurality 
of users ; b) authenticating the requests from 
* the plurality of users with a copyright server (7) ; 
c) using the copyright server to direct a docu- 
ment server (3) to act upon proper authenti- 
cation of each request; d) in response to 
direction from the copyright server, using a 
document server (7) to create uniquely en- 
coded, compressed and encrypted documents 
for each authenticated requesi the documents 
having unique encoding corresponding to each 
of the plurality of usersi' and forwarding the 
documents to each authenticated request user 
through the nj3twork\^^(9) to conresponding 
agents of each authenfti^ted request user, each- 
of the agents beiog selected from display 
agents (111) and printer agents (113); and, e) 
decrypting and uncompressing th documents 
at ach of th agents and making the docu- 
ments available for us only in response to 
receiving correct secret keys provided by the 
authenticated request user to the agents. These 
ag nts ar either pre- installed as sofhyare into 



each of the plurality of users' computers, pre- 
installed as hardware or firmware into user 
hardware selected from display devices and 
printers, or are software programs transmitted 
at the time of use. 



FIG. 2 




EP0 665 486 A3 



Europcftn Pfttcnt 
Office 



EUROPEAN SEARCH REPORT 



AppdcMlm Ncnbcv 

EP 95 30 0287 



DOCUMENTS CONSIDERED TO BE RELEVANT 



Citctofy 



Rdevant 

t* 4 



CLASSIFICATION OF THE 
APPUCATION i^tCLQ 



US-A-5 077 795 (ROURKE ET AL) 

* abstract; figures 2,5»26 * 

* column 2, line 9 - line 29 * 

* column 6, line 48 - column 7, line 48 • 

* column 9, line 57 - column 10, line 56 * 

12TH. INTL. CONF. ON DISTRIBUTED COMPUTING 
SYSTEMS, 12 June 1992, YOKOHAMA, JP; 
pages 529 - 536 

M.M.THEIMER ET AL 'Delegation through 
Access Control Programs* 

* figure 4 * 

* page 529, left column, line 18 - line 34 
* 

* page 532, right column, line 23 - line 
41 * 

* page 535, left column, line 9 - line 29 



PROCEEDINGS VLSI AND COMPUTER PERIPHERALS 

CONF., 12 May 1989, HAMBURG, DE; 

pages 4.155 - 4.158 

B.STRUIF 'The Use of Chipcards for 

Electronic Signatures and Encryption' 

* the whole document * 

EP-A-0 465 016 (DIGITAL EQUIPMENT) 

* figure 4A * 



The prtMt sewcb repMn h»s been ^«wn up for tU 



1-7.10, 
12.13 



G06F1/00 

G06F12/14 

H04L9/32 



1-7,10, 
12,13 



1-7,10, 
12,13 



TECHNICAL FELDS 
SEARCHED ObLCL*) 



G06F 



1-7,10, 
12,13 



Plan af imih 

THE HAGUE 



24 July 1995 



Powell, D 



CATCGORY OF OTCD DOCUMENTS 

X : pvtlcnUriy rdeviat if tiken ilooe 

Y : pnHaiUriy ral«vmBt if comUaad with aD04b« 

iocmiac of Iko laoM cutgoiy 
A : tecfaoologtcal fandvond 
O : DoiMfrlRai tisdesiBO 
P : intenBodtatfl ioeaxaai 



T : tb«ory or priadpio onloriylBt tbo tavmcioa 
E : «uU«r fasmt ioatam^ bat pubHshrf on, or 

ilttftbofUlBgteii 
D : im iiiiMt dfi 1b tb« MfUs*^ 
L : tocumat dted for other reuoBs 

thtt of tbt saiBo potaat fmmily, corrM y o o iInt 



2 



